-
公开(公告)号:US08554899B2
公开(公告)日:2013-10-08
申请号:US13474397
申请日:2012-05-17
IPC分类号: G06F15/173
CPC分类号: H04L63/0485 , G06F17/30864 , G06F21/606 , H04L12/4641 , H04L29/12066 , H04L29/12216 , H04L29/12301 , H04L29/1232 , H04L29/12594 , H04L29/12783 , H04L29/12801 , H04L41/00 , H04L45/00 , H04L45/24 , H04L45/28 , H04L61/1511 , H04L61/2007 , H04L61/2076 , H04L61/2092 , H04L61/3015 , H04L61/303 , H04L61/35 , H04L61/6004 , H04L63/0227 , H04L63/0272 , H04L63/04 , H04L63/0407 , H04L63/0421 , H04L63/0428 , H04L63/0435 , H04L63/0478 , H04L63/08 , H04L63/0876 , H04L63/105 , H04L63/1408 , H04L63/1416 , H04L63/1458 , H04L63/1466 , H04L63/164 , H04L63/168 , H04L67/14 , H04L67/141
摘要: A secure domain name service for a computer network is disclosed that includes a portal connected to a computer network, such as the Internet, and a domain name database connected to the computer network through the portal. The portal authenticates a query for a secure computer network address, and the domain name database stores secure computer network addresses for the computer network. Each secure computer network address is based on a non-standard top-level domain name, such as .scom, .sorg, .snet, .snet, .sedu, .smil and .sint.
-
2.发明申请METHOD FOR ESTABLISHING SECURE COMMUNICATION LINK BETWEEN COMPUTERS OF VIRTUAL PRIVATE NETWORK 无效在虚拟私有网络计算机之间建立安全通信链路的方法公开(公告)号:US20080005792A1
公开(公告)日:2008-01-03
申请号:US11679416
申请日:2007-02-27
申请人: Victor Larson , Robert Short , Edmund Munger , Michael Williamson
发明人: Victor Larson , Robert Short , Edmund Munger , Michael Williamson
IPC分类号: G06F17/00
CPC分类号: H04L63/0876 , H04L29/12047 , H04L29/12216 , H04L29/12301 , H04L29/1232 , H04L29/12783 , H04L29/12801 , H04L45/00 , H04L45/24 , H04L45/28 , H04L61/15 , H04L61/2007 , H04L61/2076 , H04L61/2092 , H04L61/35 , H04L61/6004 , H04L63/0227 , H04L63/0272 , H04L63/0281 , H04L63/029 , H04L63/0414 , H04L63/0421 , H04L63/0428 , H04L63/061 , H04L63/10 , H04L63/1458 , H04L63/1491 , H04L63/18
摘要: A technique is disclosed for establishing a secure communication link between a first computer and a second computer over a computer network. Initially, a secure communication mode of communication is enabled at a first computer without a user entering any cryptographic information for establishing the secure communication mode of communication. Then, a secure communication link is established between the first computer and a second computer over a computer network based on the enabled secure communication mode of communication. The secure communication link is a virtual private network communication link over the computer network in which one or more data values that vary according to a pseudo-random sequence are inserted into each data packet.
摘要翻译: 公开了一种通过计算机网络在第一计算机和第二计算机之间建立安全通信链路的技术。 最初,在第一计算机上启用安全通信通信模式,而无需用户输入用于建立安全通信通信模式的任何密码信息。 然后,基于启用的安全通信通信模式,通过计算机网络在第一计算机和第二计算机之间建立安全通信链路。 安全通信链路是计算机网络上的虚拟专用网络通信链路,其中根据伪随机序列变化的一个或多个数据值被插入到每个数据分组中。
-
公开(公告)号:US20080040791A1
公开(公告)日:2008-02-14
申请号:US11839969
申请日:2007-08-16
IPC分类号: H04L9/32
CPC分类号: H04L65/403 , H04L45/00 , H04L45/24 , H04L45/28 , H04L61/1511 , H04L61/2007 , H04L61/2076 , H04L61/2092 , H04L61/35 , H04L61/6004 , H04L63/0272 , H04L63/0407 , H04L63/0414 , H04L63/0428 , H04L63/08 , H04L63/10 , H04L63/1458 , H04L63/1466 , H04L63/1491
摘要: A plurality of computer nodes communicate using seemingly random Internet Protocol source and destination addresses. Data packets matching criteria defined by a moving window of valid addresses are accepted for further processing, while those that do not meet the criteria are quickly rejected. Improvements to the basic design include (1) a load balancer that distributes packets across different transmission paths according to transmission path quality; (2) a DNS proxy server that transparently creates a virtual private network in response to a domain name inquiry; (3) a large-to-small link bandwidth management feature that prevents denial-of-service attacks at system chokepoints; (4) a traffic limiter that regulates incoming packets by limiting the rate at which a transmitter can be synchronized with a receiver; and (5) a signaling synchronizer that allows a large number of nodes to communicate with a central node by partitioning the communication function between two separate entities.
-
公开(公告)号:US20080040783A1
公开(公告)日:2008-02-14
申请号:US11840508
申请日:2007-08-17
申请人: Victor Larson , Robert Short , Edmund Munger , Michael Williamson
发明人: Victor Larson , Robert Short , Edmund Munger , Michael Williamson
IPC分类号: G06F7/04
CPC分类号: H04L63/0485 , G06F17/30864 , G06F21/606 , H04L12/4641 , H04L29/12066 , H04L29/12216 , H04L29/12301 , H04L29/1232 , H04L29/12594 , H04L29/12783 , H04L29/12801 , H04L41/00 , H04L45/00 , H04L45/24 , H04L45/28 , H04L61/1511 , H04L61/2007 , H04L61/2076 , H04L61/2092 , H04L61/3015 , H04L61/303 , H04L61/35 , H04L61/6004 , H04L63/0227 , H04L63/0272 , H04L63/04 , H04L63/0407 , H04L63/0421 , H04L63/0428 , H04L63/0435 , H04L63/0478 , H04L63/08 , H04L63/0876 , H04L63/105 , H04L63/1408 , H04L63/1416 , H04L63/1458 , H04L63/1466 , H04L63/164 , H04L63/168 , H04L67/14 , H04L67/141
摘要: A secure domain name service for a computer network is disclosed that includes a portal connected to a computer network, such as the Internet, and a domain name database connected to the computer network through the portal. The portal authenticates a query for a secure computer network address, and the domain name database stores secure computer network addresses for the computer network. Each secure computer network address is based on a non-standard top-level domain name, such as .scom, .sorg, .snet, .snet, .sedu, .smil and .sint.
-
公开(公告)号:US08516117B2
公开(公告)日:2013-08-20
申请号:US13093785
申请日:2011-04-25
IPC分类号: G06F15/173
CPC分类号: H04L65/403 , H04L45/00 , H04L45/24 , H04L45/28 , H04L61/1511 , H04L61/2007 , H04L61/2076 , H04L61/2092 , H04L61/35 , H04L61/6004 , H04L63/0272 , H04L63/0407 , H04L63/0414 , H04L63/0428 , H04L63/08 , H04L63/10 , H04L63/1458 , H04L63/1466 , H04L63/1491
摘要: A plurality of computer nodes communicate using seemingly random Internet Protocol source and destination addresses. Data packets matching criteria defined by a moving window of valid addresses are accepted for further processing, while those that do not meet the criteria are quickly rejected. Improvements to the basic design include (1) a load balancer that distributes packets across different transmission paths according to transmission path quality; (2) a DNS proxy server that transparently creates a virtual private network in response to a domain name inquiry; (3) a large-to-small link bandwidth management feature that prevents denial-of-service attacks at system chokepoints; (4) a traffic limiter that regulates incoming packets by limiting the rate at which a transmitter can be synchronized with a receiver; and (5) a signaling synchronizer that allows a large number of nodes to communicate with a central node by partitioning the communication function between two separate entities.
-
6.发明申请AGILE NETWORK PROTOCOL FOR SECURE COMMUNICATIONS WITH ASSURED SYSTEM AVAILABILITY 有权用于安全通信的AGILE网络协议,具有确保的系统可用性公开(公告)号:US20080034201A1
公开(公告)日:2008-02-07
申请号:US11839937
申请日:2007-08-16
申请人: Edmund Munger , Vincent Sabio , Robert Short , Virgil Gligor
发明人: Edmund Munger , Vincent Sabio , Robert Short , Virgil Gligor
CPC分类号: H04L61/2539 , H04L9/065 , H04L29/12216 , H04L29/12301 , H04L29/1232 , H04L29/12801 , H04L45/20 , H04L45/24 , H04L61/2007 , H04L61/2076 , H04L61/2092 , H04L61/30 , H04L61/6004 , H04L63/0272 , H04L63/04 , H04L63/0407 , H04L63/0421 , H04L63/0428 , H04L63/0435 , H04L63/1441 , H04L63/1491 , H04M3/42008
摘要: A plurality of computer nodes communicates using seemingly random IP source and destination addresses and (optionally) a seemingly random discriminator field. Data packets matching criteria defined by a moving window of valid addresses are accepted for further processing, while those that do not meet the criteria are rejected. In addition to “hopping” of IP addresses and discriminator fields, hardware addresses such as Media Access Control addresses can be hopped. The hopped addresses are generated by random number generators having non-repeating sequence lengths that are easily determined a-priori, which can quickly jump ahead in sequence by an arbitrary number of random steps and which have the property that future random numbers are difficult to guess without knowing the random number generator's parameters. Synchronization techniques can be used to re-establish synchronization between sending and receiving nodes.
摘要翻译: 多个计算机节点使用看似随意的IP源和目的地址和(可选地)看似随机的鉴别符字段进行通信。 由有效地址的移动窗口定义的数据包匹配条件被接受进一步处理,而不符合标准的数据包将被拒绝。 除了IP地址和鉴别字段的“跳”之外,还可以跳过媒体访问控制地址等硬件地址。 跳跃地址由具有非重复序列长度的随机数生成器产生,其可以先前容易地确定,其可以通过任意数量的随机步骤快速地向前跳跃,并且具有将来随机数难以猜测的性质 不知道随机数生成器的参数。 同步技术可用于重新建立发送和接收节点之间的同步。
-
7.发明申请Agile network protocol for secure communications with assured system availability 有权用于安全通信的敏捷网络协议,确保系统可用性公开(公告)号:US20060123134A1
公开(公告)日:2006-06-08
申请号:US11301022
申请日:2005-12-13
申请人: Edmund Munger , Vincent Sabio , Robert Short , Virgil Gligor , Douglas Schmidt
发明人: Edmund Munger , Vincent Sabio , Robert Short , Virgil Gligor , Douglas Schmidt
CPC分类号: H04L61/2539 , H04L9/065 , H04L29/12216 , H04L29/12301 , H04L29/1232 , H04L29/12801 , H04L45/20 , H04L45/24 , H04L61/2007 , H04L61/2076 , H04L61/2092 , H04L61/30 , H04L61/6004 , H04L63/0272 , H04L63/04 , H04L63/0407 , H04L63/0421 , H04L63/0428 , H04L63/0435 , H04L63/1441 , H04L63/1491 , H04M3/42008
摘要: A plurality of computer nodes communicates using seemingly random IP source and destination addresses and (optionally) a seemingly random discriminator field. Data packets matching criteria defined by a moving window of valid addresses are accepted for further processing, while those that do not meet the criteria are rejected. In addition to “hopping” of IP addresses and discriminator fields, hardware addresses such as Media Access Control addresses can be hopped. The hopped addresses are generated by random number generators having non-repeating sequence lengths that are easily determined a-priori, which can quickly jump ahead in sequence by an arbitrary number of random steps and which have the property that future random numbers are difficult to guess without knowing the random number generator's parameters. Synchronization techniques can be used to re-establish synchronization between sending and receiving nodes.
摘要翻译: 多个计算机节点使用看似随意的IP源和目的地址和(可选地)看似随机的鉴别符字段进行通信。 由有效地址的移动窗口定义的数据包匹配条件被接受进一步处理,而不符合标准的数据包将被拒绝。 除了IP地址和鉴别字段的“跳”之外,还可以跳过媒体访问控制地址等硬件地址。 跳跃地址由具有非重复序列长度的随机数生成器产生,其可以先前容易地确定,其可以通过任意数量的随机步骤快速地向前跳跃,并且具有将来随机数难以猜测的性质 不知道随机数生成器的参数。 同步技术可用于重新建立发送和接收节点之间的同步。
-
8.发明申请公开(公告)号:US20080040792A1
公开(公告)日:2008-02-14
申请号:US11840560
申请日:2007-08-17
申请人: Victor Larson , Robert Short , Edmund Munger , Michael Williamson
发明人: Victor Larson , Robert Short , Edmund Munger , Michael Williamson
IPC分类号: G06F9/00
CPC分类号: H04L63/0485 , G06F17/30864 , G06F21/606 , H04L12/4641 , H04L29/12066 , H04L29/12216 , H04L29/12301 , H04L29/1232 , H04L29/12594 , H04L29/12783 , H04L29/12801 , H04L41/00 , H04L45/00 , H04L45/24 , H04L45/28 , H04L61/1511 , H04L61/2007 , H04L61/2076 , H04L61/2092 , H04L61/3015 , H04L61/303 , H04L61/35 , H04L61/6004 , H04L63/0227 , H04L63/0272 , H04L63/04 , H04L63/0407 , H04L63/0421 , H04L63/0428 , H04L63/0435 , H04L63/0478 , H04L63/08 , H04L63/0876 , H04L63/105 , H04L63/1408 , H04L63/1416 , H04L63/1458 , H04L63/1466 , H04L63/164 , H04L63/168 , H04L67/14 , H04L67/141
摘要: A secure domain name service for a computer network is disclosed that includes a portal connected to a computer network, such as the Internet, and a domain name database connected to the computer network through the portal. The portal authenticates a query for a secure computer network address, and the domain name database stores secure computer network addresses for the computer network. Each secure computer network address is based on a non-standard top-level domain name, such as .scom, .sorg, .snet, .snet, .sedu, .smil and .sint.
摘要翻译: 公开了一种用于计算机网络的安全域名服务,其包括连接到计算机网络(例如因特网)的门户,以及通过门户连接到计算机网络的域名数据库。 门户验证安全计算机网络地址的查询,域名数据库存储计算机网络的安全计算机网络地址。 每个安全的计算机网络地址基于非标准的顶级域名,如.scom,.sorg,.snet,.snet,.sedu,.smil和.sint。
-
-
-
-
-
-
-
搜索结果
8 条记录 (耗时 0.02 秒)
